Security and Ethical Hacking

TH08 AD RMS, BitLocker, IPSec, and EFS: Protecting Files in Transit and at Rest

August 6th, 2015

2:00pm - 5:00pm

Level: Intermediate

Orin Thomas

Author / Server Administrator


It's no secret that in most organizations, file and folder permissions are rarely applied properly. It's not unusual for normal users to have access to sensitive data simply because permissions haven't been applied correctly. The reality is that File and Folder permissions aren't enough to protect files on file shares. When they are copied to USB drives or sent via e-mail, all pretense of being secured goes out the window. In this demo-heavy three-hour session I'll look at the combination of technologies including AD RMS, BitLocker, IPsec and even EFS that you can use on your existing Windows Network to protect files from being opened by people who aren't authorized to do so, whether those files are located on file share, being copied off a file share, are being e-mailed over the internet, or are being stored on a FAT32 formatted USB drive.

You will learn:

  • Develop an understanding of the problems around data security and the solutions that are available in Windows Server and Windows Client operating system ecosystem
  • How to select an appropriate data security strategy based on the characteristics of your environment
  • How to use AD RMS, BitLocker, IPSec and EFS to implement an appropriate data security strategy